Did you know Cybrary has FREE video training? Join more than 2,500,000 IT and cyber security professionals, students, career changers, and more, growing their careers on Cybrary.
This lesson starts out with a definition security misconfiguration which means a secure configuration must be deployed and defined for the application, framework, application server, web server, database server and platform. Security misconfiguration is very common and has an easy detect-ability. The lesson also discusses directory traversal attacks, directory listing leakage, XML External Entity (XXE) injection.